Researchers link latest Java zero-day exploit to Bit9 hack

The remote access malware used in both cases connected to the same control server, Symantec researchers said

By Lucian Constantin, IDG News Service |  Security

Oracle has yet to reveal its patching plans for this latest Java vulnerability. The next Java security update was scheduled for April, but the company might decide to release an emergency update before then.

Security researchers have advised users who don't need access to Web-based Java content to remove the Java plug-in from their browsers. The latest version of Java -- Java 7 Update 15 -- provides an option through its control panel to disable the Java plug-ins or to force a confirmation prompt before Java applets are allowed to run inside the browser.

Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+

Answers - Powered by ITworld

Ask a Question